Apple didn't break PPTP. The protocol was insecure. Since it's a Microsoft protocol you could argue Microsoft broke it when they designed MS-CHAPv1 and, after Schneier and Mudge published the weakness they broke it again when they designed MS-CHAPv2. Schneier and Mudge proved the second version was only as secure as the password which means it's subject to dictionary attacks. Chapcrack plus CloudCracker = password brute-forced in 24 hours.
Taiwan = China. It's the Republic of China if you listen to the Taiwanese, and the People's Republic of China if you listen to mainland China. The ROC and the PRC still claim mainland China and the Taiwan Area as part of their respective territories.
always carry umbrella shaped like piece of rock, check
and government census information
never co-operate with the authorities, check
to map the Earth's entire human population. The data set has a resolution of five meters and knows where man-made structures are everywhere on the planet.
This is a guess... I haven't seen this written about anywhere...
It seems APFS is automatic on flash storage, but not on spinning disks for reasons relating to the security of data-deletion.
Flash storage without strong encryption is insecure - since the Flash Translation Layer abstracts the Logical Block Address from the Physical Block Address for wear-levelling purposes, and the drive includes a pool of additional storage space that cannot be accessed directly. Therefore secure file deletion is not possible - files cannot be securely overwritten.
In the past, Apple have withdrawn 'secure delete' (overwriting deleted files) from their operating systems for this reason.
Full disk encryption sidesteps this issue since destroying the key that encrypted the file prevents the file from being recovered, even if it's in the wear-levelling reserved pool.
Reading through Apple's information about APFS, it seems Apple are moving to a file-system that's encrypted on a per-file basis to permit secure deletion of individual files, not just a single-key per container system that only allows secure wiping of the entire container.
Security and privacy are fundamental in the design of Apple File System. That's why Apple File System implements strong full-disk encryption, encrypting files and all sensitive metadata.
Multi-key encryption with per-file keys for file data and a separate key for sensitive metadata.
Multi-key encryption ensures the integrity of user data. Even if someone were to compromise the physical security of the device and gain access to the device key, they still couldn't decrypt the user's files.
You fellows were pikers, but we know the real trick, and you'd better get wise to it. There's no way to rule innocent men. The only power any government has is the power to crack down on criminals. Well, when there aren't enough criminals, one makes them. One declares so many things to be a crime that it becomes impossible for men to live without breaking laws. Who wants a nation of law-abiding citizens? What's there in that for anyone? But just pass the kind of laws that can neither be observed nor enforced nor objectively interpreted-and you create a nation of law-breakers-and then you cash in on guilt. Now that's the system, Mr. Rearden, that's the game, and once you understand it, you'll be much easier to deal with."
It seems to enbody the principle of your post, but is always quoted out of context. The book talks about a different era - an industrial era - but, despite its moral defense of capitalism and the necessity of an independent mind, Atlas Shrugged's discussion of 'secret law' is directly relevant to the concept of a device that can exfiltrate an individual's life secrets to a state power.
Statistically, it seems similar to the maths of the birthday problem.
What is the probability that in a room filled with 23 people at least two of them have the same birthday?
(It's 50.7%)
With a population as large as Facebook's userbase all receiving recommendations about people they may be connected with, the odds that someone will be connected to someone else are higher than intuition would suggest.
The algorithmic quirk that associated Kashmir Hill and Rebecca Porter doesn't need family tree secret analysis by Facebook. Hill did the analysis based on a familiar sounding surname.
In a large enough sample, enough people looking for 'long lost friends/relatives/schoolmates' etc will make that association for it to seem as though Facebook knows more about the associations than they really do.
PIGEONS??? Only the rich kids had pigeons. My family were reduced to using mountain-to-mountain semaphore using flags made of rocks. #FirstWorldPigeonProblems
I thought that was the whole point of agile - that there is no 2.0, there's only 1.0 plus duct tape. Because if you're genuinely aiming for an MVP, the end-goal is just more durable duct tape?
If the requirement is 'throwaway platform' then the manager-deity-on-high didn't properly think through what they really wanted.
I used to think that too, but then I heard that my favourite song, John Cage's 4'33" has been remixed into an extended 10 minute version on itunes. So much better than the original.
That seems like a good analogy for the common person, because it relates to the fears of the individual. But the vulnerabilities introduced by intentionally compromising strong encryption have financially wider reaching side-effects than the value of the contents of individual houses.
It's not possible to segregate 'consumer' and 'commercial' internet traffic to permit businesses to use unweakened encryption, so the backdoor compromises all financial transactions - offering a criminal prize equivalent to an entire country's electronic GDP.
Securing compromised encryption against that kind of threat vector sounds fairly unworkable.
Actually the UK police grab the unlocked phone out of the criminal's hand, like a mugger.
I know this probably sounds difficult to believe, but it's actually true.
Officers have become increasingly frustrated with criminals who refuse to hand over the passwords for their encrypted mobiles, denying them access to vital information.
But the Metropolitan police have come up with a novel solution, by snatching an iPhone from a suspect on the street before he had a chance to lock it.
Officers investigating a credit card racket realised that crucial evidence was stored on the phone of suspect Gabriel Yew, 45, that would be inaccessible without his password.
To get round the problem covert officers from Operation Falcon, the Met police team that investigates major fraud, seized the mobile from Yew's hand as he took a call in the street. They then tapped the screen to prevent it from locking while the evidence was being downloaded.
Slashdot Mirror
If you're ever in the market for a bridge, I have a great one to sell you!
obfs2, obfs3, scramblesuit, or fte?
Sorry RMS.
Oh great, another circle-jerk story where Slashdotters can come together and wallow in their on superiority
Only wallow in UX superiority on Neu-Slashdot.
Back in Slashdot-classic, the only UX we understood was:
Apple didn't break PPTP. The protocol was insecure. Since it's a Microsoft protocol you could argue Microsoft broke it when they designed MS-CHAPv1 and, after Schneier and Mudge published the weakness they broke it again when they designed MS-CHAPv2. Schneier and Mudge proved the second version was only as secure as the password which means it's subject to dictionary attacks. Chapcrack plus CloudCracker = password brute-forced in 24 hours.
Taiwan = China. It's the Republic of China if you listen to the Taiwanese, and the People's Republic of China if you listen to mainland China. The ROC and the PRC still claim mainland China and the Taiwan Area as part of their respective territories.
Facebook used satellite-based data
always carry umbrella shaped like piece of rock, check
and government census information
never co-operate with the authorities, check
to map the Earth's entire human population. The data set has a resolution of five meters and knows where man-made structures are everywhere on the planet.
live in cave, check
It seems APFS is automatic on flash storage, but not on spinning disks for reasons relating to the security of data-deletion.
Flash storage without strong encryption is insecure - since the Flash Translation Layer abstracts the Logical Block Address from the Physical Block Address for wear-levelling purposes, and the drive includes a pool of additional storage space that cannot be accessed directly. Therefore secure file deletion is not possible - files cannot be securely overwritten.
In the past, Apple have withdrawn 'secure delete' (overwriting deleted files) from their operating systems for this reason.
Full disk encryption sidesteps this issue since destroying the key that encrypted the file prevents the file from being recovered, even if it's in the wear-levelling reserved pool.
Reading through Apple's information about APFS, it seems Apple are moving to a file-system that's encrypted on a per-file basis to permit secure deletion of individual files, not just a single-key per container system that only allows secure wiping of the entire container.
Security and privacy are fundamental in the design of Apple File System. That's why Apple File System implements strong full-disk encryption, encrypting files and all sensitive metadata.
Multi-key encryption with per-file keys for file data and a separate key for sensitive metadata.
Multi-key encryption ensures the integrity of user data. Even if someone were to compromise the physical security of the device and gain access to the device key, they still couldn't decrypt the user's files.
I like it because it defeats stylometry.
You fellows were pikers, but we know the real trick, and you'd better get wise to it. There's no way to rule innocent men. The only power any government has is the power to crack down on criminals. Well, when there aren't enough criminals, one makes them. One declares so many things to be a crime that it becomes impossible for men to live without breaking laws. Who wants a nation of law-abiding citizens? What's there in that for anyone? But just pass the kind of laws that can neither be observed nor enforced nor objectively interpreted-and you create a nation of law-breakers-and then you cash in on guilt. Now that's the system, Mr. Rearden, that's the game, and once you understand it, you'll be much easier to deal with."
It seems to enbody the principle of your post, but is always quoted out of context. The book talks about a different era - an industrial era - but, despite its moral defense of capitalism and the necessity of an independent mind, Atlas Shrugged's discussion of 'secret law' is directly relevant to the concept of a device that can exfiltrate an individual's life secrets to a state power.
We also mock you for the atrocious health care you have because you can't afford to access it.
Wait until you can't make the monthly repayments on your wifi-enabled pacemaker...
I don't want to sound paranoid, but...
Given the history of this organisation, there is a possibility that the 'disable Intel ME, block the nefarious attackers' bit is a decoy.
(Disclaimer: I use a 2008 thinkpad with the SOIC-16 personally reprogrammed using a beaglebone. So maybe I'm paranoid.)
Sadia Afroz is the main public-sector researcher on this topic (stylometric machine learning).
She gave a relevant introduction in 2013 stylometric analysis to track anonymous users in the underground and the corresponding video regarding darknet user tracking through stylometry.
She commented a while ago "Please do not ask me to deanonymize Satoshi." and gave reasons.
and what's the current MACD of the whoppercoin?
What is the probability that in a room filled with 23 people at least two of them have the same birthday?
(It's 50.7%)
With a population as large as Facebook's userbase all receiving recommendations about people they may be connected with, the odds that someone will be connected to someone else are higher than intuition would suggest.
The algorithmic quirk that associated Kashmir Hill and Rebecca Porter doesn't need family tree secret analysis by Facebook. Hill did the analysis based on a familiar sounding surname.
In a large enough sample, enough people looking for 'long lost friends/relatives/schoolmates' etc will make that association for it to seem as though Facebook knows more about the associations than they really do.
PIGEONS??? Only the rich kids had pigeons. My family were reduced to using mountain-to-mountain semaphore using flags made of rocks. #FirstWorldPigeonProblems
A home-made faraday bag would be more portable.
I thought that was the whole point of agile - that there is no 2.0, there's only 1.0 plus duct tape. Because if you're genuinely aiming for an MVP, the end-goal is just more durable duct tape?
If the requirement is 'throwaway platform' then the manager-deity-on-high didn't properly think through what they really wanted.
I used to think that too, but then I heard that my favourite song, John Cage's 4'33" has been remixed into an extended 10 minute version on itunes. So much better than the original.
Accusations of libel don't concern anonymous cowards.
That seems like a good analogy for the common person, because it relates to the fears of the individual. But the vulnerabilities introduced by intentionally compromising strong encryption have financially wider reaching side-effects than the value of the contents of individual houses.
It's not possible to segregate 'consumer' and 'commercial' internet traffic to permit businesses to use unweakened encryption, so the backdoor compromises all financial transactions - offering a criminal prize equivalent to an entire country's electronic GDP.
Securing compromised encryption against that kind of threat vector sounds fairly unworkable.
I know this probably sounds difficult to believe, but it's actually true.
Officers have become increasingly frustrated with criminals who refuse to hand over the passwords for their encrypted mobiles, denying them access to vital information.
But the Metropolitan police have come up with a novel solution, by snatching an iPhone from a suspect on the street before he had a chance to lock it.
Officers investigating a credit card racket realised that crucial evidence was stored on the phone of suspect Gabriel Yew, 45, that would be inaccessible without his password.
To get round the problem covert officers from Operation Falcon, the Met police team that investigates major fraud, seized the mobile from Yew's hand as he took a call in the street. They then tapped the screen to prevent it from locking while the evidence was being downloaded.
That XKCD doesn't even include Wire messenger, which has many more reasons for its existance than 'Allo'.
But "If you need more than 3 levels of indentation, you're screwed anyway, and should fix your program."
This list is incomplete; you can help by expanding it.
Oh, yes. Little Bobby Tables, we call him.